Tools
- bgp.he.net
- Asnlookup
- Metabigor
- whoxy.com
- DOMLink
- getrelationship.py
- Copyright text
- Terms of service text
- Privacy policy test
- Burp Suite Pro (or ZAP Proxy?)
- GoSpider
- hakrawler
- Subdomainizer
- subscraper
site:twitch-tv -www.twicht.tv
site:twitch-tv -www.twicht.tv -watch.twitch.tv
- Amass
amass enum ... - Subfinder v2
- github-subdomains.py
- github-search (unstable -> run multiple times)
- shosubgo
- Cloud Ranges (scan all AWS, Azure, etc. check SSL certs for "target")
- Massdns
- Amass
amass enum -brute -d twitch.tv -src - aisdnsbrute
- shuffleDNS
- altdns
Wordlists
- all.txt
- AssetNote -> commonspeak2
- favfreak
- Nmap
- masscan (faster than Nmap)
- dnmasscan
- Brutespray
- github-search
- Aquatone
- Eyewitness
- httpscreenshot
- WitnessMe
- can-i-take-over-xyz
- Nuclei
- SubOver
- interlace
- Tools by TomNomNom (eg httpprobe, mage)
- Bunty.offensiveai.com (paid)
- Scout (paid)
- WebScarab
- Recon-ng
- GitRob
- OnlineHashCrack.com
- idb
- Wireshark
- Bucket Finder
- Race the Web
- Google Dorks
- JD GUI
- Mobile Security Framework
- Ysoserial
Last modified 9mo ago